unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
Live-Hack-CVE/CVE-2021-29368
Session fixation vulnerability in CuppaCMS thru commit 4c9b742b23b924cf4c1f943f48b278e06a17e297 on November 12, 2019 allows attackers to gain access to arbitrary user sessions. CVE project by @Sn0wAlice
Create: 2023-02-06 23:15:47 +0000 UTC Push: 2023-02-06 23:15:50 +0000 UTC |
Live-Hack-CVE/CVE-2023-0444
A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a. A default user 'User', which is in the 'Read Only User' group, can view the password of another default user 'Administrator', which is in the 'Administrator' group. This allows any lower privileged user to log in as an CVE project by @Sn0wAlice
Create: 2023-02-06 23:15:43 +0000 UTC Push: 2023-02-06 23:15:45 +0000 UTC |
Live-Hack-CVE/CVE-2022-45496
Buffer overflow vulnerability in function json_parse_string in sheredom json.h before commit 0825301a07cbf51653882bf2b153cc81fdadf41 (November 14, 2022) allows attackers to code arbitrary code and gain escalated privileges. CVE project by @Sn0wAlice
Create: 2023-02-06 22:11:02 +0000 UTC Push: 2023-02-06 22:11:04 +0000 UTC |
Live-Hack-CVE/CVE-2022-45493
Buffer overflow vulnerability in function json_parse_key in sheredom json.h before commit 0825301a07cbf51653882bf2b153cc81fdadf41 (November 14, 2022) allows attackers to code arbitrary code and gain escalated privileges. CVE project by @Sn0wAlice
Create: 2023-02-06 22:10:58 +0000 UTC Push: 2023-02-06 22:11:00 +0000 UTC |
Vulnmachines/imagemagick-CVE-2022-44268
Imagemagick CVE-2022-44268
Create: 2023-02-06 18:45:42 +0000 UTC Push: 2023-02-06 18:45:42 +0000 UTC |
Live-Hack-CVE/CVE-2017-20176
A vulnerability classified as problematic was found in ciubotaru share-on-diaspora 0.7.9. This vulnerability affects unknown code of the file new_window.php. The manipulation of the argument title/url leads to cross site scripting. The attack can be initiated remotely. The name of the patch is fb6fae2f8a9b146471450b5b0 CVE project by @Sn0wAlice
Create: 2023-02-06 14:31:13 +0000 UTC Push: 2023-02-06 14:31:15 +0000 UTC |
Live-Hack-CVE/CVE-2014-125086
A vulnerability has been found in Gimmie Plugin 1.2.2 and classified as critical. Affected by this vulnerability is an unknown functionality of the file trigger_login.php. The manipulation of the argument userid leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The name of the patch is f CVE project by @Sn0wAlice
Create: 2023-02-06 14:31:09 +0000 UTC Push: 2023-02-06 14:31:11 +0000 UTC |
Live-Hack-CVE/CVE-2022-25855
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization. CVE project by @Sn0wAlice
Create: 2023-02-06 14:31:06 +0000 UTC Push: 2023-02-06 14:31:08 +0000 UTC |
Live-Hack-CVE/CVE-2022-25853
All versions of the package semver-tags are vulnerable to Command Injection via the getGitTagsRemote function due to improper input sanitization. CVE project by @Sn0wAlice
Create: 2023-02-06 14:31:02 +0000 UTC Push: 2023-02-06 14:31:04 +0000 UTC |
Timorlover/CVE-2023-23333
There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.
Create: 2023-02-06 14:20:40 +0000 UTC Push: 2023-02-06 14:20:41 +0000 UTC |
hieuminhnv/CVE-2022-21587-POC-
CVE-2022-21587 POC
Create: 2023-02-06 12:18:24 +0000 UTC Push: 2023-02-06 12:18:25 +0000 UTC |
hieuminhnv/CVE-2022-21587-POC
CVE-2022-21587 POC
Create: 2023-02-06 12:18:24 +0000 UTC Push: 2023-02-06 12:30:10 +0000 UTC |
Live-Hack-CVE/CVE-2014-125085
A vulnerability, which was classified as critical, was found in Gimmie Plugin 1.2.2. Affected is an unknown function of the file trigger_ratethread.php. The manipulation of the argument t/postusername leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The name of the patch is f11a136e9cbd CVE project by @Sn0wAlice
Create: 2023-02-06 09:56:55 +0000 UTC Push: 2023-02-06 09:56:57 +0000 UTC |
Live-Hack-CVE/CVE-2014-125084
A vulnerability, which was classified as critical, has been found in Gimmie Plugin 1.2.2. This issue affects some unknown processing of the file trigger_referral.php. The manipulation of the argument referrername leads to sql injection. Upgrading to version 1.3.0 is able to address this issue. The name of the patch is CVE project by @Sn0wAlice
Create: 2023-02-06 09:56:51 +0000 UTC Push: 2023-02-06 09:56:53 +0000 UTC |
Live-Hack-CVE/CVE-2015-0252
internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote attackers to cause a denial of service (segmentation fault and crash) via crafted XML data. CVE project by @Sn0wAlice
Create: 2023-02-06 07:43:09 +0000 UTC Push: 2023-02-06 07:43:11 +0000 UTC |
Live-Hack-CVE/CVE-2018-1311
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This flaw has not been addressed in the maintained version of the library and has no current mitigation other than to disable DTD processing. This can be accomplished via the DOM using a standar CVE project by @Sn0wAlice
Create: 2023-02-06 07:43:06 +0000 UTC Push: 2023-02-06 07:43:08 +0000 UTC |
l00neyhacker/CVE-2021-35287
CVE-2021-35287
Create: 2023-02-06 06:37:02 +0000 UTC Push: 2023-02-06 06:37:03 +0000 UTC |
l00neyhacker/CVE-2021-35286
CVE-2021-35286
Create: 2023-02-06 06:35:04 +0000 UTC Push: 2023-02-06 06:35:05 +0000 UTC |
0xFTW/CVE-2011-2523
CVE-2011-2523 exploit
Create: 2023-02-06 06:17:34 +0000 UTC Push: 2023-02-06 06:17:34 +0000 UTC |
tristao-marinho/CVE-2022-45544
SCHLIX CMS 2.2.7-2 arbitrary File Upload
Create: 2023-02-06 05:45:37 +0000 UTC Push: 2023-02-06 05:45:38 +0000 UTC |
Previous
409
410
411
412
413
414
415
416
Next